gnutls_anti_replay_set_add_function - Linux


gnutls_anti_replay_set_add_function configures GnuTLS to check for replayed records using a callback function. This function is called whenever a record is received and can be used to verify if the record has been previously seen.


gnutls_anti_replay_set_add_function(session, cb)


  • session: The GnuTLS session for which the callback is being set.
  • cb: A callback function that takes two arguments:
    • record: The received record.
    • userdata: User-defined data passed to the callback.


The following example shows how to set the anti-replay callback function:

int gnutls_anti_replay_set_add_function(gnutls_session_t session, int (*cb)(gnutls_record_info_t *record, void *userdata))

Common Issues

The callback function should be carefully designed to avoid false positives and false negatives. It should also be efficient, as it will be called every time a record is received.


gnutls_anti_replay_set_add_function can be used together with other GnuTLS functions to provide a comprehensive security solution. For example, it can be used with gnutls_anti_replay_init to initialize the anti-replay state and with gnutls_anti_replay_is_replay to check if a record has been previously seen.

Related Commands